Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-798 (使用硬编码的凭证) — Vulnerability Class 550

550 vulnerabilities classified as CWE-798 (使用硬编码的凭证). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2026-27785 Milesight Cameras Use of Hard-coded Credentials — MS-Cxx63-PD 8.8 High2026-04-27
CVE-2026-35503 SenseLive X3050 Use of Hard-coded Credentials — X3050 9.8 Critical2026-04-23
CVE-2026-6610 liangliangyy DjangoBlog Setting settings.py hard-coded credentials — DjangoBlog 3.7 Low2026-04-20
CVE-2026-6578 liangliangyy DjangoBlog Setting settings.py hard-coded credentials — DjangoBlog 5.6 Medium2026-04-19
CVE-2026-6574 osuuu LightPicture API Upload Endpoint lp.sql hard-coded credentials — LightPicture 7.3 High2026-04-19
CVE-2026-5189 Nexus Repository 3 - Hardcoded Credential in Internal Database Component — Nexus Repository 9.8 -2026-04-15
CVE-2026-4832 Schneider Electric多款产品 信任管理问题漏洞 — Easergy MiCOM P14x 7.5 -2026-04-14
CVE-2026-1233 Text to Speech (TTS) by Mementor <= 1.9.8 - Use of Hardcoded Password to Unauthenticated Remote Database Access — Text to Speech – TTSWP 7.5 High2026-04-04
CVE-2017-20234 GarrettCom Magnum 6K and 10K Authentication Bypass via Hardcoded String — GarrettCom Magnum 6K and 10K Managed Switches 9.8 Critical2026-04-03
CVE-2025-10681 Gardyn Mobile Application and Device Firmware Use Hard-coded Credentials — Mobile Application 8.6 High2026-04-03
CVE-2026-25601 Credential Exposure vulnerability in MEPIS RM — MEPIS RM 6.4 Medium2026-04-01
CVE-2026-1612 Hard-coded AWS Key in AL-KO Robolinho Update Software — Robolinho Update Software 9.1 -2026-03-30
CVE-2025-9497 Hardcoded Upgrade Decryption Passwords — Time Provider 4100 9.8 -2026-03-28
CVE-2026-4993 wandb OpenUI config.py hard-coded credentials — OpenUI 3.3 Low2026-03-28
CVE-2025-55262 HCL Aftermarket DPC is affected by SQL Injection — Aftermarket DPC 8.3 High2026-03-26
CVE-2025-55263 HCL Aftermarket DPC is affected by Hardcoded Sensitive Data — Aftermarket DPC 7.3 High2026-03-26
CVE-2025-12708 Multiple Vulnerabilities in IBM Concert Software — Concert 6.2 Medium2026-03-25
CVE-2026-27073 WordPress Addi – Cuotas que se adaptan a ti plugin <= 2.0.4 - Broken Authentication vulnerability — Addi &#8211; Cuotas que se adaptan a ti 7.5 High2026-03-25
CVE-2026-1958 Hard-coded passwords in KlinikaXP — KlinikaXP Insertino 9.8 -2026-03-23
CVE-2026-22900 QuNetSwitch — QuNetSwitch 9.8 -2026-03-20
CVE-2026-33072 FileRise: Default Encryption Key Enables Token Forgery and Config Decryption — FileRise 8.2 High2026-03-20
CVE-2026-4475 Yi Technology YI Home Camera ipc hard-coded credentials — YI Home Camera 8.8 High2026-03-20
CVE-2026-4219 INDEX Conferences & Exhibitions Organization YWF BPOF APGCS App ae.index.apgcs BuildConfig.java hard-coded credentials — YWF BPOF APGCS App 3.3 Low2026-03-16
CVE-2026-4216 i-SENS SmartLog App air.SmartLog.android hard-coded credentials — SmartLog App 5.3 Medium2026-03-16
CVE-2016-20031 ZKTeco ZKBioSecurity 3.0 Local Authorization Bypass via visLogin.jsp — ZKTeco ZKBioSecurity 5.5 Medium2026-03-15
CVE-2016-20026 ZKTeco ZKBioSecurity 3.0 Hardcoded Credentials Remote Code Execution — ZKTeco ZKBioSecurity 9.8 Critical2026-03-15
CVE-2026-3873 Legacy built-in user account — Avantra 7.2 High2026-03-13
CVE-2026-28255 Use of Hard-coded Credentials vulnerability in Trane Tracer SC, Tracer SC+, and Tracer Concierge — Tracer SC 9.8AICriticalAI2026-03-12
CVE-2019-25470 eWON Firmware 12.2-13.0 Authentication Bypass via wsdReadForm — eWON 7.5 High2026-03-11
CVE-2026-24448 Micro Research MR-GM5L-S1和Micro Research MR-GM5A-L1 信任管理问题漏洞 — MR-GM5L-S1 9.8AICriticalAI2026-03-11

Vulnerabilities classified as CWE-798 (使用硬编码的凭证) represent 550 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.